CVE-2019-17091 in Eclipse and Oracle Products
Published on October 2, 2019

faces/context/PartialViewContextImpl.java in Eclipse Mojarra, as used in Mojarra for Eclipse EE4J before 2.3.10 and Mojarra JavaServer Faces before 2.2.20, allows Reflected XSS because a client window field is mishandled.

NVD

Products Associated with CVE-2019-17091

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-17091 are published in these products:

Eclipse Mojarra

Oracle Mojarra Javaserver Faces

Oracle Application Testing Suite

Oracle Banking Enterprise Product Manufacturing

Oracle Communications Diameter Signaling Router

Oracle Communications Network Integrity

Oracle Communications Unified Inventory Management

Oracle Enterprise Data Quality

Oracle Health Sciences Information Manager

Oracle Healthcare Data Repository

Oracle Primavera P6 Enterprise Project Portfolio Management

Oracle Rapid Planning

Oracle Retail Advanced Inventory Planning

Oracle Retail Assortment Planning

Oracle Retail Bulk Data Integration

Oracle Retail Financial Integration

Oracle Retail Integration Bus

Oracle Retail Invoice Matching

Oracle Retail Merchandising System

Oracle Retail Service Backbone

Oracle Retail Store Inventory Management

Oracle Secure Global Desktop

Oracle Time And Labor

Exploit Probability

EPSS

7.19%

Percentile

91.41%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-17091 in Eclipse and Oracle ProductsPublished on October 2, 2019

Products Associated with CVE-2019-17091

Exploit Probability

CVE-2019-17091 in Eclipse and Oracle Products
Published on October 2, 2019